Vulnerabilities > CVE-2006-5066 - Cross-Site Scripting vulnerability in Danphpsupport 0.5
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Multiple cross-site scripting (XSS) vulnerabilities in DanPHPSupport 0.5, and other versions before 1.0, allow remote attackers to inject arbitrary web script or HTML via the (1) page parameter in index.php or the (2) do parameter in admin.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description DanPHPSupport 0.5 admin.php do Parameter XSS. CVE-2006-5066. Webapps exploit for php platform id EDB-ID:28671 last seen 2016-02-03 modified 2006-09-25 published 2006-09-25 reporter You_You source https://www.exploit-db.com/download/28671/ title DanPHPSupport 0.5 admin.php do Parameter XSS description DanPHPSupport 0.5 index.php page Parameter XSS. CVE-2006-5066. Webapps exploit for php platform id EDB-ID:28670 last seen 2016-02-03 modified 2006-09-25 published 2006-09-25 reporter You_You source https://www.exploit-db.com/download/28670/ title DanPHPSupport 0.5 index.php page Parameter XSS